S2M Banner Twitter Linked In S2M Blog FacebookS2M Home Talent Clients TestimonialsIn Touch Contact Us

17 Apr 2014

POSTED BY James Cooper IN IT & Technology, Our Team, S2M News | Apr 17th, 2014 | one response

Adobe Reader detected with vulnerability

Adobe Reader has been detected a threat that can cause harm to its Android based users. The threat has vulnerability especially for the Android, which gives capability to attackers to execute arbitrary code on the operating system.

 

The threat was being watched by a Dutch information security firm Securify with its security researcher Yorick Koster. The firm submitted a detailed report on the bug to the Full Disclosure mailing list for the threat which has been detected with Android version 11.1.3. The threat was being fixed in Android’s earlier version 11.2.0 as well but has resurfaced.

 

The threat has the capability to access and exploit a system’s data such as documents on its SD card. To be able to execute arbitrary Java access code a well-crafted PDF file is being created which has the ability to exploit the system. The attacker has to first trick the user to open the PDF file to be able to access the system.

 

Adobe has acknowledged that its Adobe Reader version 11.1.3 has been detected with the vulnerability. The company has provided the solution with its solution from its earlier version 11.2.0. The susceptible version of the Adobe Reader exposes its users to many unsafe Javascript interfaces.

 

Once the malicious Java code is opened, it runs on app sandbox for Reader on Android based systems. The code exploits a user’s documents and creates new files. But its harm is not possible outside sandbox on Android operating system.

 

Adobe issued a review and advisory for the threat on April 14 for its users. The targeted user system when interacts with the PDF file which contains Javascript enters the system. The attackers can use any Javascript items including Koster’s report which can get access to a public reflection APIs obtained by these items.

 

Check for your Adobe Reader version on your system to make sure that your data is not being compromised. If you operating on Adobe Reader version 11.1.3 check out company’s advisory to safeguard yourself from the threat.

One Response to “Adobe Reader detected with vulnerability”

  1. FULL STREAM says:

    Hi would you mind letting me know which hosting company you’re
    working with? I’ve loaded your blog in 3 completely
    different web browsers and I must say this blog
    loads a lot faster then most. Can you suggest a good internet hosting provider
    at a honest price? Many thanks, I appreciate it!

Leave a Reply

You must be logged in to post a comment.